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CLAIMS 



What is claimed is: 

1. A method for a Max Sessions Server (MSS) of a data coinmunications 
network keeping a count of the sessions used at a given time by^group of users to 
correct said count to compensate for abnormal disconnection^ of users belonging 
to said group, said method comprising: / 

assigning unique identification values (UlWfto each user logged in at a 
port of a network access server (NAS); / 

maintaining a master list of UIVs associated with logged in users and their 
respective group identification information; 

responding to a new user's a^empt to log in to the data communications 
network by checking to see if the UIV of the new user is already in the master list, 
and if it is, clearing the entry in the master list and entering the new user's UIV and 
group identification information in the master list. 

2. A methocLm accordance with claim 1, said responding further comprising: 
decrementing a counter associated with a group associated with the UIV of 

the cleared'entry; and 

i/crementing a counter associated with a group associated with the UIV of 
the n«5w user. 
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3. A method in accordance with claim 1, further comprising: 
rejecting the new user's attempt to log in to the data communications 

network if the log in would cause a counter associated with a group to which the 
new user belongs to exceed a predetermined number of raaamum sessions. 

4. A method in accordance with claim 2, further ^comprising: 
rejecting the new user's attempt to log in tor the data communications 

network if the log in would cause a counter associated with a group to which the 
new user belongs to exceed a predetennined number of maximum sessions. 

5. A method in accordance wittf claim 1, further comprising: 
allowing the new user's attempt to log into the data communications 

network if the log in would not cause a counter associated with a group to which 
the new user belongs to exceed a predetermined number of maximum sessions. 



6. A method in afcordance with claim 2, further comprising: 

allowing the new user's attempt to log into the data communications 
network if the log in would not cause a counter associated with a group to which 
the new user belongs to exceed a predetermined number of maximum sessions. 
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7. A method in accordance with claim 1, wherein said assigning includes: 
forming said UIV from a port identification associated with the^ort and 

from a NAS identification associated with the NAS. / 

8. A method in accordance with claim 2, wherein said ^assigning includes: 
forming said UIV from a port identification assorted with the port and 

from a NAS identification associated with the NAS/ 

9. A method in accordance with claim 3/wherein said assigning includes: 
forming said UIV from a port identification associated with the port and 

from a NAS identification associated *vith the NAS. 

10. A method in accordance/with claim 4, wherein said assigning includes: 
forming said UIV from a port identification associated with the port and 

from a NAS identificatioi/associated with the NAS. 

11. A method hVaccordance with claim 5, wherein said assigning includes: 
forming said UTV from a port identification associated with the port and 

from a NAS identification associated with the NAS. 
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12. A method in accordance with claim 6, wherein said assigning includes: 
forming said UTV from a port identification associated with tryport and 

from a NAS identification associated with the NAS. 

13. A method for a Resource Control Server (RCS) of a^ata communications 
network keeping a count of a particular resource used ar a given time by a group of 
users to correct said count to compensate for abnorrjpfal disconnections of users 
belonging to said group, said method comprising: 

assigning unique identification values pJTVs) to each user logged in at a 
port of a network access server (NAS); 

maintaining a master list of IJTVi associated with logged in users and their 
respective group identification information; 

responding to a new user's/attempt to log in to the data communications 
network by checking to see if the UIV of the new user is already in the master list, 
and if it is, clearing the entry in the master list and entering the new user's UTV and 
group identification information in the master list. 



14. A method ir/ accordance with claim 13, said responding further comprising: 
decrementing a counter associated with a group associated with the UTV of 

the cleared entry; and 

incrementing a counter associated with a group associated with the UTV of 

the new pser. 
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15. A method in accordance with claim 13, wherein saM/assigning includes: 
forming said UTV from a port identificationas^<iciated with the port and 
from a NAS identification associated with the NAS. 



16. A method in accordance wiuYelaim 14, wherein said assigning includes: 
forming said UTV froma^Kirt identification associated with the port and 
from a NAS identification associated with the NAS. 
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17. A program storage device readable by a machine, tangidly embodying a 
program of instructions executable by the machine to perform a method for a Max 
Sessions Server (MSS) of a data communiofaons network keeping a count of the 
sessions used at a given time by a group of users to correct said count to 
compensate for abnormal disconnections of users belonging to said group, said 
method comprising: 

assigning unique identification values (UTVs) to each user logged in at a 
port of a network access server (NAS); 

maintaining/a master list of UTVs associated with logged in users and their 
respective group identification information; 

respoiuling to a new user's attempt to log in to the data communications 
network by checking to see if the UTV of the new user is already in the master list, 
and if it is, clearing the entry in the master list and entering the new user's UTV and 
grqup identification information in the master list. 

22 




CISCO-1372 

18. A program storage device readable by a machine, tangidly emtjpflying a 
program of instructions executable by the machine to perform a^fnethod for a 
Resource Control Server (RCS) of a data communication^network keeping a 
count of a particular resource used at a given time by afgroup of users to correct 
5 said count to compensate for abnormal disconnections of users belonging to said 
group, said method comprising: 

assigning unique identification v^ues (UIVs) to each user logged in at a 
port of a network access server (NAJ 

maintaining a master list df UTVs associated with logged in users and their 
10 respective group identification information; 

responding to a new user's attempt to log in to the data communications 
network by checking ta see if the UIV of the new user is already in the master list, 
and if it is, clearing Ae entry in the master list and entering the new user's UIV and 
group identification information in the master list. 
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19. A mefliod for a Max Sessions Server (MSS) of a data communications 
network keeping a county of the sessions used at a given time by a group of users 
to correct said count to compensate for abnormal disconnections of users 
belonging to said group, said method comprising: 

assigning unique identifications values (UIVs) to each used logged in at a 
; of a network access server (NAS); 
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maintaining a master list of UIVs associated with logg^d-ilfusers and their 
respective group identification information; 

periodically checking a NAS tp-determine if it has become non-operational; 
responding to the non^operational status of a NAS by removing all UTVs 
associated with thp-rion-operational NAS from said master list and decrementing 
the count offhe sessions used by the number of UTVs removed from said master 



20. A method in accordance with claim 19 wherein said periodically checking 
is performed by an Authentication, Authorization and Accenting Server (AAA) 
associated with the MSS. 

21 . A method in accordance with claim 19, further comprising: 
transmitting a communication to/another MSS on the data communications 

network to inform it of the non-operational status of a NAS. 



22. A method in accor&Uice with claim 21 , further comprising: 

receiving a communication from another MSS on the data communication 
network advising oi the non-operational status of a NAS; 

responding to said communication by removing all UTVs associated with 
the non-operational NAS from said master list and decrementing the count of the 
session/used by the number of UTVs removed from said master list. 
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23. A method for a Resource Control Server (RCS) of a data communications 
network keeping a count of a particular resource used at a given time byd group of 
users to correct said count to compensate for abnormal disconnection^ of users 
belong to said group, said method comprising: 

assigning unique identifications values (UTVs) to ea^tf used logged in at a 
port of a network access server (NAS); 

maintaining a master list of UTVs associated ^ith logged in users and their 
respective group identification information; 

periodically checking a NAS to determine if it has become non-operational; 
responding to the non-operational status of a NAS by removing all UTVs 
associated with the non-operational NAS from said master list and decrementing 
the count of the particular resource ^sed by the number of UTVs removed from 
said master list 

24. A method in accordance with claim 23 wherein said periodically checking 
is performed by an Authentication, Authorization and Accounting Server (AAA) 
associated with the MSS. 



25. A method in accordance with claim 23, further comprising: 

traramitting a communication to another MSS on the data communications 
network/to inform it of the non-operational status of a NAS. 
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26. A method in accordance with claim 25, further comprising: 

receiving a communication from another MSS on the data communication 

network advising of the non-operational status of a NAS; 

responding to said communicaliOT by removing all UIVs associated with 

the non-operational NAS fronvsaid master list and decrementing the count of the 

particular resource used Wthe number of UTVs removed from said master list. 



^^2)t7. A program storage device readable by a machine, tangidly embojtying a 

program of instructions executable by the machine to perform a mduiod for a Max 
10 Sessions Server (MSS) of a data communications network Jpeeping a count of the 
sessions used at a given time by a group of users to cprcect said count to 
compensate for abnormal disconnections of use/s belonging to said group, said 
method comprising: 

assigning unique identificauWvalues (UIVs) to each used logged in at a 
15 port of a network access server CNAS); 

maintaining a maste/Ust of UTVs associated with logged in users and their 
respective group identification information; 

periodical^ checking a NAS to determine if it has become non-operational; 
responding to the non-operational status of a NAS by removing all UIVs 
20 associated with the non-operational NAS from said master list and decrementing 
the cemnt of the sessions used by the number of UIVs removed from said master 
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28. A program storage device readable by a machine, tangidly embodying a S 
program of instruction executable by the machine to perform a method fara 
Resource Control Server (RCS) of a data communications networjeleeeping a 
count of a particular resource used at a given time by a group of users to correct 
5 said count to compensate for abnormal disconnectipfts of users belong to said 
group, said method comprising: X 

assigning unique identification^values (UIVs) to each used logged in at a 
port of a network access serverCNAS); 

maintaining a master list of UIVs associated with logged in users and their 
10 respective group identification information; 

periodically checking a NAS to determine if it has become non-operational; 

responding to the non-operational status of a NAS by removing all UIVs 
associated with the non-operational NAS from said master list and decrementing 
tire count of the particular resource used by the number of UTVs removed from 
15/ said master list. 

An abnormal user disconnection^! compensation system for a Max 
/Sessions Server (MSS) keeping a count of the sessions used at a given time by a 
group of users, said system comprising: 
20 a MSS; 

a database mainlined by said MSS including for each user logged into the 
data communications system through the MSS, the user belonging to a group, a 
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unique identification value (UTV) associated with the user's connection to the^data 
communications network through a particular port of a particular Networtr Assess 
Server (NAS) for the data communications network, and group identification 
information associated with the user; / 

a checker to compare each new log in request director to the MSS with the 
contents of said database to determine if a UW of the ne*v log in request matches 
an existing UTV in the database; and / 

a clearer to clear existing information in the database associated with said 
UIV if said checker determines that a UTV nrthe database is the same as the UIV 
of a new log in request. / 

30. A system in accordance with claim 29, further comprising: 

a counter keeping a count of sessions used by a group of users. 

31. A system in accordance with claim 30, further comprising: 

an increment incrementing said counter for each new log in by a member 
of said group of/users. 

32. A System in accordance with claim 3 1 , further comprising; 

A decrementer decrementing said counter for each disconnection of a 
member of said group of users. 
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33. A system in accordance with claim 32, further comprising: / 

a log in rejector rejecting a user belonging to said grour/of user's attempt to 
log in if said log in would cause said counter to exceed an Authorized session 
count for said group of users. / 

34. A system in accordance with claim 33, further comprising: 

a NAS checker checking a NAS asstoiated with said MSS to determine if it 
has become non-operational; and / 

a broken NAS clearer clearirfg existing information in the database 
associated with a NAS if said NAS checker determines said NAS to be non- 
operational. / 

35. A system in accordance with claim 34, further comprising: 

a transmitter transmitting a communication to another MSS on the data 
communication^ network to inform it of the non-operational status of a NAS. 

36. Asystem in accordance with claim 33, further comprising: 

/ a receiver receiving communications over the data communications 
network iriforming of the non-operational status of a NAS. 
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37. A system in accordance with claim 36, further comprising: 

a broken NAS clearer clearing existing information in the database 
associated with a NAS if said receiver is informed of the^n-operational status of 
said NAS. 
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38. An abnormal user disconnection and compensation system for a Resource 
Control Sever (RCS) keeping a count of ther particular resource used at a given 
time by a group of users, said system comprising: 
a RCS; 

10 a database maintained by^aid RCS including for each user logged into the 

data communications system through the RCS, the user belonging to a group, a 
unique identification value / (UTV) associated with the user's connection to the data 
communications network through a particular port of a particular Network Assess 
Server (NAS) for th/data communications network, and group identification 
15 information associated with the user; 

a checker to compare each new log in request directed to the RCS with the 
contents of said database to determine if a UTV of the new log in request matches 
an existing UIV in the database; and 

a clearer to clear existing information in the database associated with said 
20 UTV if said checker determines that a UTV in the database is the same as the UTV 



/of a new log in request. 
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39. A system in accordance with claim 38, further comprising: 
a counter keeping a count of resources used by a group^f users. 

40. A system in accordance with claim 39, further i&mprising: 
an incrementer incrementing said counter f)zfr each new use of resources in 

by a member of said group of users. 

41 . A system in accordance with clajm 40, further comprising; 
a decrementer decrementing said counter for each disconnection of a 

member of said group of users uftng resources. 

42. A system in accordance with claim 41 , further comprising: 

a NAS checker Checking a NAS associated with said RCS to determine if it 
has become non-operational; and 

a brokenl^AS clearer clearing existing information in the database 
associated wkh a NAS if said NAS checker determines said NAS to be non- 



43. / A system in accordance with claim 42, further comprising: 

a transmitter transmitting a communication to another RCS on the data 
^communications network to inform it of the non-operational status of a NAS. 
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44. A system in accordance with claim 41 , further compris 
a receiver receiving communications over the data communications 

network informing of the non-operational status^fr a NAS. 

45. A system in accordance wijhxlaim 44, further comprising: 

a broken NAS clearer/clearing existing information in the database 
associated with a NAS/if said receiver is informed of the non-operational status of 
said NAS. 



1 46. A method for a Max Sessions Server (MSS) to detect haro>are or 

communication failures at a NAS or at a particular port on^afi NAS, said method 
comprising: 

maintaining a master list of unique identification numbers associated with 
each logged in user; 

responding to a user's attempt^ log into the data communications network 
by checking to see if the unique identification number associated with the is 
already on the master list^ 

removing the/unique identification number from the master list if said 
unique identification number already appears on the list; 

decrementing the corresponding MSS counter(s) by one if said unique 
identification number is already on the master list. 
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having an associated AAA (Authentication, Authorization, 
Accounting) server automatically checking on a periodic tim^basis to determine if 
the said NAS has failed to communicate, said JJ<A notifying MSS if said the 
NAS does fail to communicate; 

removing all said uniau^identification numbers associated with said NAS 
from the master list ifsftfd NAS fails to communicate within said time limit; 

decrem^iifing the MSS counters by the total number of lost connections on 
said NASif said NAS fails to communicate within said time limit. 




10 47. A method according to claim 46, further comprising: 
\ I broadcasting said NAS failure to all MS Ss a^bciated with said NAS. 



48. A method according to claim 46, furaier comprising: 

rejecting the user's attempt to log in if the user's log in would cause a count 
15 of the sessions in use by the user otby a group to which the user belongs to exceed 
a predetermined number of maximum sessions allowed by the MSS for the user or 
the group to which the user/oelongs. 



49. A method according to claim 46, further comprising: 
20 aUowin&'Uie user's attempt to log in if the user's log in would not cause a 

count of uWsessions in use by the user or a group to which the user belongs to 
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exceed a predetermined maximum number of sessions aHowed by the MSS for the 
user or the group to which the user belongs; / 

incrementing the corresponding counteff s) of number of logged in sessions 
by one; / 

adding the said unique idenjification number to the master list. 

50. A method accordjrfg to claim 46, wherein: 

the unique identification numbers are formed by concatenation of a NAS 
identifier and a rort identifier. 




34 



